Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,459 advisories

Loading
Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because... High Unreviewed
CVE-2023-22512 was published Jan 16, 2024
LlamaIndex Vulnerable to Denial of Service (DoS) High
CVE-2025-1752 was published for llama-index (pip) May 10, 2025
Uncontrolled resource consumption for some OpenVINO™ model server software maintained by Intel(R)... High Unreviewed
CVE-2025-22892 was published May 13, 2025
The issue was addressed with improved UI. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and... High Unreviewed
CVE-2025-31210 was published May 13, 2025
In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection... High Unreviewed
CVE-2025-3600 was published May 14, 2025
Missing connection timeout in Aardvark-dns High
CVE-2024-8418 was published for aardvark-dns (Rust) Sep 4, 2024
An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed
CVE-2025-26783 was published May 14, 2025
Dell PowerScale OneFS, versions 9.4.0.0 through 9.9.0.0, contains an uncontrolled resource... High Unreviewed
CVE-2025-26481 was published May 15, 2025
An issue in Cesanta mjs 2.20.0 allows a remote attacker to cause a denial of service via the mjs... High Unreviewed
CVE-2023-49550 was published Jan 3, 2024
Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized... High Unreviewed
CVE-2025-26677 was published May 13, 2025
css-what vulnerable to ReDoS due to use of insecure regular expression High
CVE-2022-21222 was published for css-what (npm) Oct 1, 2022
On Realtek RTL8195AM devices before 284241d70308ff2519e40afd7b284ba892c730a3, the timer task can... High Unreviewed
CVE-2022-34326 was published Sep 28, 2022
An uncaught exception issue discovered in Softing OPC UA C++ SDK before 6.30 for Windows... High Unreviewed
CVE-2023-41151 was published Dec 14, 2023
This issue was addressed with improved checks. This issue is fixed in tvOS 15.5, watchOS 8.6, iOS... High Unreviewed
CVE-2022-32790 was published Sep 25, 2022
phpMyAdmin Denial Of Service (DOS) attack High
CVE-2016-5706 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
decsecre583
Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption)... High Unreviewed
CVE-2022-40188 was published Sep 25, 2022
A vulnerability exists in the ClearPass Policy Manager Guest User Interface that can allow an... High Unreviewed
CVE-2022-37884 was published Sep 21, 2022
A lack of rate limiting in pjActionAjaxSend in Car Rental v3.0 allows attackers to cause resource... High Unreviewed
CVE-2023-48834 was published Dec 7, 2023
A remote potential adjacent denial of service (DoS) and potential adjacent arbitrary code... High Unreviewed
CVE-2022-28639 was published Sep 21, 2022
A denial-of-service issue was discovered in MediaWiki 1.37.x before 1.37.2. Rendering of w/index... High Unreviewed
CVE-2022-28204 was published Sep 20, 2022
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-35769 was published Aug 10, 2022
Resource exhaustion in engine.io High
CVE-2020-36048 was published for engine.io (npm) Feb 9, 2022
darrachequesne G-Rath
decsecre583
Cloud Foundry routing release versions from v0.163.0 to v0.283.0 are vulnerable to a DOS attack. ... High Unreviewed
CVE-2023-34061 was published Jan 12, 2024
Apache Tomcat - Denial of Service High
CVE-2024-34750 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 3, 2024
westonsteimel
An issue in the box_equal function in openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2023-48951 was published Nov 29, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database